Fixes related key issue. #23496
Fixes related key issue. #23496
Conversation
Signed-off-by: lynn-stephenson <lynn.stephenson@protonmail.com>
Signed-off-by: lynn-stephenson <lynn.stephenson@protonmail.com>
|
Well, nobody's perfect. Accidentally said version 1 and 2; not 2 and 3. Oops. |
nickvergessen
added
3. to review
This comment has been minimized.
This comment has been minimized.
|
Ah, it's from you too, ref #23427 |
|
Looks good to me 👍 I understand (roughly) why using key material derived from the password is better then using the password directly. But my knowledge about crypto is limited hence someone else needs to decide on this. Please keep in mind that |
@kesselb It's not just that. You don't want to use passwords directly, NOR use practically the same key for encryption and MAC. I could have improved so much more, and I did on my last PR as a draft (even then I didn't include all cryprography improvements due to a lot of work). But then I realized it broke so much stuff I might as well have swapped out NextCloud's crypto with Halite. |
|
But switching to Libsodium and Halite is definitely something NextCloud should look into. |
|
Thanks for your first pull request and welcome to the community! Feel free to keep them coming! If you are looking for issues to tackle then have a look at this selection: https://github.com/nextcloud/server/issues?q=is%3Aopen+is%3Aissue+label%3A%22good+first+issue%22 |
This should fix it, I implemented tests, too. Everything seems to work fine when I ran the tests. I decided to leave additional changes for a later pull request. I don't really see any sense in overhauling the encryption scheme to where it breaks a bunch of unit tests if I'm not going to just pull in Halite, which would be far better than my implementation anyways.
Here you go. 😄